Jobs via Dice
Product Security Engineering 2
Location: St. Charles, MO
Salary: Negotiable
Job Summary Our client is currently seeking a Product Security Engineering 2 to support the specialized Advanced Weapons Proprietary Programs in the Space, Intelligence & Weapons Systems (SIWS) organization.
Primary Responsibilities
Work with industry partners on assessment programs for the specialized Advanced Weapons Proprietary Programs.
Act as the primary product security engineer for establishing and maintaining the security posture of the programs.
Collaborate with the cyber team compliance to remediate vulnerabilities identified during automated or manual cyber scans.
Assess organization‑wide security and privacy risk and update assessment results on an ongoing basis.
Perform system analysis and develop system tests for cyber threats, cyber test activities, and the cybersecurity of large‑scale events.
Ensure the product security engineering development lifecycle is followed, with an emphasis on clear requirements development/verification (using CAMEO).
Perform criticality analysis to identify critical components, work with suppliers, and integrate them into the overall system.
Perform cyber risk assessments and develop risk mitigation plans (e.g., POA&Ms, SCRM) using a variety of tools including CAMEO.
Support and facilitate ATO/IATT packages, including processing IAVMs and CTOs.
Perform software assurance tasks, including software assurance risk reports.
Support proposal development efforts, including BOE generation, GR&A development, and trade study analysis.
Support engineering installation & analysis of patches and system updates to determine their consequences.
Attend, collect data from, out‑brief, and facilitate collaboration and project management for program boards.
Apply Security Technical Implementation Guides (STIGs).
Manage and address Cyber Tasking Orders (CTOs) related to Cyber Tools.
Document installation and configuration steps for labs and operations deliveries.
Provide feedback to Cyber Leadership and engineers to improve cybersecurity tools and processes.
Collaborate with local Information System Security Officers (ISSOs) to ensure compliance with relevant cybersecurity standards and regulations.
Support cyber threat intelligence activities.
Support the development and maintenance of cyber scanning, patching, remediation tools, and applications.
Support compliance drivers such as TEMPEST, DFARS, COMSEC, CNSSI, and others as needed.
Perform and/or support the development of tools for cyber forensics.
Develop and define efficiencies and improvements to tools to improve team productivity.
Perform system analysis trade studies to define technical concepts and solutions.
Basic Qualifications
Commission Degree in engineering, engineering technology, chemistry, physics, mathematics, data science, or computer science.
Current DoD 8570 certification at IAT Level II / IAM Level I or higher (e.g., Security+, GSEC, SCNP, SSCP, CISSP, CISA, GSE, SCNA).
1+ years of experience in product security / cybersecurity engineering.
1+ years of experience with industry standard cybersecurity frameworks (NIST, OWASP, DFARS).
Preferred Qualifications
Experience using CAMEO (proficiency preferred).
2+ years of experience in Windows/RHEL system administration, installing, tuning & troubleshooting cyber tools (ESS/HBSS, ConfigOS, Splunk, etc.).
2+ years of experience configuring, running, and scripting audit tools.
Experience using software assurance static and/or dynamic code analysis (e.g., Fortify).
Knowledge of FISMA‑RMF and NIST 800‑53 requirements.
Experience leading system and component‑level cyber test and evaluation, including threat and security assessments and tabletop exercises.
Strong written and oral communication skills, with the ability to translate complex technical issues into simple concepts.
Understanding of DoD defense systems architectures and communications system concepts, mission, and common system test and data analysis techniques.
Job Details
Seniority level: Entry level
Employment type: Full‑time
Job function: Sales and Business Development
Industries: Software Development
#J-18808-Ljbffr
Location: St. Charles, MO
Salary: Negotiable
Job Summary Our client is currently seeking a Product Security Engineering 2 to support the specialized Advanced Weapons Proprietary Programs in the Space, Intelligence & Weapons Systems (SIWS) organization.
Primary Responsibilities
Work with industry partners on assessment programs for the specialized Advanced Weapons Proprietary Programs.
Act as the primary product security engineer for establishing and maintaining the security posture of the programs.
Collaborate with the cyber team compliance to remediate vulnerabilities identified during automated or manual cyber scans.
Assess organization‑wide security and privacy risk and update assessment results on an ongoing basis.
Perform system analysis and develop system tests for cyber threats, cyber test activities, and the cybersecurity of large‑scale events.
Ensure the product security engineering development lifecycle is followed, with an emphasis on clear requirements development/verification (using CAMEO).
Perform criticality analysis to identify critical components, work with suppliers, and integrate them into the overall system.
Perform cyber risk assessments and develop risk mitigation plans (e.g., POA&Ms, SCRM) using a variety of tools including CAMEO.
Support and facilitate ATO/IATT packages, including processing IAVMs and CTOs.
Perform software assurance tasks, including software assurance risk reports.
Support proposal development efforts, including BOE generation, GR&A development, and trade study analysis.
Support engineering installation & analysis of patches and system updates to determine their consequences.
Attend, collect data from, out‑brief, and facilitate collaboration and project management for program boards.
Apply Security Technical Implementation Guides (STIGs).
Manage and address Cyber Tasking Orders (CTOs) related to Cyber Tools.
Document installation and configuration steps for labs and operations deliveries.
Provide feedback to Cyber Leadership and engineers to improve cybersecurity tools and processes.
Collaborate with local Information System Security Officers (ISSOs) to ensure compliance with relevant cybersecurity standards and regulations.
Support cyber threat intelligence activities.
Support the development and maintenance of cyber scanning, patching, remediation tools, and applications.
Support compliance drivers such as TEMPEST, DFARS, COMSEC, CNSSI, and others as needed.
Perform and/or support the development of tools for cyber forensics.
Develop and define efficiencies and improvements to tools to improve team productivity.
Perform system analysis trade studies to define technical concepts and solutions.
Basic Qualifications
Commission Degree in engineering, engineering technology, chemistry, physics, mathematics, data science, or computer science.
Current DoD 8570 certification at IAT Level II / IAM Level I or higher (e.g., Security+, GSEC, SCNP, SSCP, CISSP, CISA, GSE, SCNA).
1+ years of experience in product security / cybersecurity engineering.
1+ years of experience with industry standard cybersecurity frameworks (NIST, OWASP, DFARS).
Preferred Qualifications
Experience using CAMEO (proficiency preferred).
2+ years of experience in Windows/RHEL system administration, installing, tuning & troubleshooting cyber tools (ESS/HBSS, ConfigOS, Splunk, etc.).
2+ years of experience configuring, running, and scripting audit tools.
Experience using software assurance static and/or dynamic code analysis (e.g., Fortify).
Knowledge of FISMA‑RMF and NIST 800‑53 requirements.
Experience leading system and component‑level cyber test and evaluation, including threat and security assessments and tabletop exercises.
Strong written and oral communication skills, with the ability to translate complex technical issues into simple concepts.
Understanding of DoD defense systems architectures and communications system concepts, mission, and common system test and data analysis techniques.
Job Details
Seniority level: Entry level
Employment type: Full‑time
Job function: Sales and Business Development
Industries: Software Development
#J-18808-Ljbffr